N/A

Plesk 18.0.37 is affected by a Cross Site Request Forgery (CSRF) vulnerability that allows an attacker to insert data on the user and admin panel. NOTE: the vendor states that this is only a site-specific problem on websites of one or more Plesk users

N/A

N/A

Plesk Cms 跨站请求伪造漏洞

Plesk Cms是瑞士的一个 WebOps 托管平台。用于运行、自动化和发展应用程序、网站和托管业务。 Plesk 18.0.37版本存在跨站请求伪造漏洞，该漏洞源于软件缺少对于跨站请求伪造token的验证。该漏洞允许攻击者可利用该漏洞在用户和管理面板上插入数据。

N/A

N/A